We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see https://campus.barracuda.com/doc/71862301/ for further information on our EoS policy.

How to Create a Broad-Multicast Access Rule

  • Last updated on

A Broad-Multicast access rule propagates broadcasts between multiple bridged network interfaces.

FW_BroadMulticast_Rule.png

Create a Broad-Multicast Access Rule

  1. Go to CONFIGURATION > Configuration Tree > Box > Virtual Servers > your virtual server > Assigned Services > Firewall > Forwarding Rules.
  2. Click Lock.
  3. Either click the plus icon (+) in the top right of the rule set, or right-click the rule set and select New > Rule.
    FW_Rule_Add01.png
  4. Select Broad-Multicast as the action.
  5. Enter a name for the rule. For example, EnableDeviceShare.
  6. Specify the following settings that must be matched by the traffic to be handled by the access rule:
    • Source – The bridged network.
    • Destination – The broadcast addresses that you want to propagate in the network.
    • Service – Select a service object, or select Any for this rule to match for all services.
  7. In the Broad- Multicast - Propagation List field, enter the propagation interface or IP address(es). You can also enter a comma-delimited array of (bridged) network interfaces or existing IP addresses.

    Propagation List ContentExampleOperation
    Mixed list of IP addresses and interfaces
    port2,port3,192.168.200.10IP packets are propagated through the specified interface and in case of IP addresses, the outgoing interface is determined by performing a routing lookup.
    Network interface(s)port2,port3,vpnr0,brid01The IP packets are transmitted unchanged through the specified interface(s).
    IP address(es)192.168.200.10,10.10.0.100The target of IP packets is changed according to the specified IP address(es) and packets are delivered after performing a routing lookup.
    <interface>:<IP address>port2:192.168.200.10The IP packets are transmitted through the specified interface and the target is changed according to the specified IP address. For a standard IP address, a layer 2 broadcast is triggered. For a multicast IP address, a corresponding layer 2 multicast MAC is created.
    <interface>:<IP address>!192.168.200.10!Forces a layer 2 broadcast and the target MAC address is changed to ff:ff:ff:ff:ff:ff. This will also work if the destination is a multicast address.
  8. Click OK.
  9. Drag and drop the access rule so that it is the first rule that matches the traffic that you want it to forward. Ensure that the rule is located above the BLOCKALL rule; rules located below the BLOCKALL rule are never executed.
  10. Click Send Changes and Activate.

Additional Matching Criteria

Additional Policies

Last updated on